CSOonline

Salt Security adds defense against OAuth attacks

Salt Security has added a new OAuth security offering to its API protection platform to help organizations detect attempts to exploit OAuth and fix vulnerabilities associated with the protocol. OAuth ...
Infosecurity-magazine.com

Russian Threat Actors Target NGOs with New OAuth Phishing Tactics

A new wave of targeted phishing attacks exploiting Microsoft 365’s OAuth workflows has been uncovered by cybersecurity experts. These campaigns, observed by Volexity since March 2025, involve ...

CoPhish Attack Exploits Copilot Studio Agents to Steal Microsoft OAuth Tokens

A newly identified phishing technique known as “CoPhish” exploits Microsoft Copilot Studio agents to deliver deceptive OAuth ...
Threat Post

Google Adding Security Checks to Non-OAuth 2.0 Compliant Apps

Google announced it will add additional security checks to log-in attempts from applications or devices that do not support OAuth 2.0. Google announced today that in the coming months it will be more ...